---
title: Preparing PingAuthorize for Konnect integration
description: Prepare PingAuthorize to receive authorization requests from Kong Konnect.
component: pingauthorize
version: 11.0
page_id: pingauthorize:pingauthorize_integrations:paz_preparing_paz_konnect_integration
canonical_url: https://docs.pingidentity.com/pingauthorize/11.0/pingauthorize_integrations/paz_preparing_paz_konnect_integration.html
revdate: December 2, 2025
section_ids:
  steps: Steps
---

# Preparing PingAuthorize for Konnect integration

For Kong Konnect to use PingAuthorize as an external authorization policy runtime service, you must prepare PingAuthorize to receive authorization requests from Kong Konnect.

## Steps

1. In the PingAuthorize admin console, go to **Configuration > Web Services and Applications > HTTP Servlet Extensions**.

2. Click **Sideband API**.

3. In the **Request Context Method** list, select **State**.

   ![Screen capture of the "Sideband API" screen in the administrative console with the Request Context Method set to state, the Shared Secret Header Name set to CLIENT-TOKEN, and Kong Konnect added as the selected Shared Secret.](_images/paz_sideband_api_servlet_config.png)

4. In the **Shared Secret Header Name** field, enter `CLIENT-TOKEN`.

5. To create a new shared secret, in the **Shared Secret Header Name** list, select **New Sideband API Shared Secret**.

6. In the **New Sideband API Shared Secret** modal, create a suitably long shared secret value, and then click **Save**.

7. Click **Save**.